Secure boot for 32-bit Microcontrollers!

Go to file

David Brown 3f9ec900c4 zephyr: Configure mbed TLS for PSS instead of V1.5 Although MCUboot has used PKCS#1 v2.1 (PSS) for some time now, the mbed TLS config file was calling out v1.5. This compiled because MCUboot implements its own specialized version of the signature check, and only needs the underlying primitives from mbed TLS. (The general code in mbed TLS is quite a bit larger). To make it clear that we are always using PSS, change the mbed TLS configuration to call this out explicitly. Signed-off-by: David Brown <david.brown@linaro.org>		2018-02-23 09:38:47 -07:00
boot	zephyr: Configure mbed TLS for PSS instead of V1.5	2018-02-23 09:38:47 -07:00
docs	Change all doc links to use relative names	2018-02-12 15:53:07 -02:00
ext	Add Mynewt support for bundled tinycrypt + mbedtls	2017-12-21 13:32:59 -07:00
samples/zephyr	zephyr: Create a test runner for the samples	2018-01-29 14:29:48 -07:00
scripts	imgtool: Add support for Intel Hex images	2018-02-01 16:00:21 -07:00
sim	Bump internal mbedtls to 2.7.0	2018-02-13 15:10:36 -07:00
testplan/mynewt	zephyr: Move testplan into sample Makefile	2017-09-14 16:10:50 -06:00
.gitignore	Anchor mynewt ignored directories	2017-08-24 07:07:56 -06:00
.gitmodules	sim: Move mbedtls into mcuboot-sys	2017-07-12 15:00:57 -06:00
.travis.yml	Enable slot0 validation in travis	2017-12-21 13:36:34 -07:00
LICENSE	Add mention to tinycrypt LICENSE in main LICENSE	2017-09-12 10:15:24 -06:00
NOTICE	Add NOTICE file for mcuboot from ASF	2017-12-21 14:49:11 -07:00
README.md	Use relative links for docs	2018-02-16 16:23:09 -07:00
project.yml	Switch mynewt repo to master	2017-04-26 10:49:44 -03:00
repository.yml	Fix with correct release numbers	2018-02-16 16:45:03 -07:00
root-ec-p256.pem	zephyr: Support RSA, and ECDSA P-256 signing	2017-02-02 08:39:18 -07:00
root-rsa-2048.pem	zephyr: Support RSA, and ECDSA P-256 signing	2017-02-02 08:39:18 -07:00
sign.sh	zephyr: Support RSA, and ECDSA P-256 signing	2017-02-02 08:39:18 -07:00

README.md

mcuboot

This is mcuboot, version 1.1.0

MCUboot is a secure bootloader for 32-bit MCUs. The goal of MCUboot is to define a common infrastructure for the bootloader, system flash layout on microcontroller systems, and to provide a secure bootloader that enables easy software upgrade.

MCUboot is operating system and hardware independent, and relies on hardware porting layers from the operating system it works with. Currently mcuboot works with both the Apache Mynewt, and Zephyr operating systems, but more ports are planned in the future. RIOT is currently supported as a boot target with a complete port planned.

Using MCUboot

Instructions for different operating systems can be found here:

Roadmap

The issues being planned and worked on are tracked on Jira. To participate please visit:

https://runtimeco.atlassian.net/projects/MCUB/summary

Browsing

Information and documentation on the bootloader is stored within the source, and on confluence:

https://runtimeco.atlassian.net/wiki/discover/all-updates

For more information in the source, here are some pointers:

boot/bootutil: The core of the bootloader itself.
boot/boot_serial: Support for serial upgrade within the bootloader itself.
boot/zephyr: Port of the bootloader to Zephyr
boot/mynewt: Mynewt bootloader app
imgtool: A tool to securely sign firmware images for booting by mcuboot.
sim: A bootloader simulator for testing and regression

Joining

Developers welcome!

Our developer mailing list: http://lists.runtime.co/mailman/listinfo/dev-mcuboot_lists.runtime.co
Our Slack channel: https://mcuboot.slack.com/
Get your invite here!
Our IRC channel: http://irc.freenode.net, #mcuboot